From time to time (Every other day) , I get asked why and what does it mean for me , Well below is a high level of the what , how , why. Start with the videos on the topic and then move to the reference links. Cyber Security Reference Architecture : https://channel9.msdn.com/Blogs/Taste-of-Premier/ToP1808 or https://www.youtube.com/watch?v=AeMalNggPZU…
So over the past month, I get the same question How do I add a user to a set / aka admin set? This can be simply done with the FIMAutomation [code language=”powershell”] Script Below : #——————————————————————————————————————– [CmdletBinding()] Param( [Parameter(Mandatory=$True,Position=1)] [string]$set, [Parameter(Mandatory=$True)] [string]$username, [Parameter(Mandatory=$True)] [string]$url ) $URI = "http://" + $url + ":5725/resourcemanagementservice"…
What is the Issue : When upgraded or new install of Privilege Access Management(PAM) some rest API calls only work locally on the PAM server. When calling the REST API you receive the following return With a response body of: { “odata.error”:{“code”:””,”message”:{ “lang”:”en-US”,”value”:”An operations error occurred.\r\n”}} } API requests that work: /api/pamresources/pamrequeststoapprove /api/pamresources/pamrequests /api/pamresources/pamrequests({requestId)/Close…
Issue: Today I went to install the Outlook plugin for Microsoft Identity Manager 2016 SP1 latest and greatest installed. To my surprise I was met with ‘Prerequisites Not Met’ First Outlook 2016 was installed from the Office 365 install wizard , Then Installed MIM add-add in with just the password option as i knew there…
In the past the automation of password changes in FIM have been a bit complex with opening the MA and having to update with clear text password. In recent document updates we have posted here : https://docs.microsoft.com/en-us/powershell/identitymanager/microsoft.directoryservices.metadirectoryservices.config/vlatest/set-miisadmaconfiguration In this example we just updated the password in active directory without updating the MA to simulate automated…
Enabling Exchange online notification and updating the password used by the Microsoft Identity Manager(FIMService) Scenario: When using the Exchange online email notification integration you prompted to enter your exchange online Email account and the password . In most cases you must update the password and or account in the future an the only way…
Enabling multiple user certificates on one Smart Card Scenario: Create an automated way of adding two certificates to the same card each representing a different account. Solution: provides the capability to put two or more certificates, each associated with a different account, on one card. The additional certificates are not limited to accounts solely…
Add-WindowsFeature : The request to add or remove features on the specified server failed. Installation of one or more roles, role services, or features failed. prerequisiteinstaller log shows: 2016-09-29 12:17:36 – Install process returned (0X3E8=1000) 2016-09-29 12:17:36 – [In HRESULT format] (0X800703E8=-2147023896) 2016-09-29 12:17:36 – Last return code (0X3E8=1000) 2016-09-29 12:17:36 – Reading the…
SharePoint used to have a menu option called “Sign in as Different User” in the top-right corner of every page. It is very useful but form admins sometimes it can be a bit of a pain. So simple solution is to build it right into the Home Page Resources like you see below. In…
Scenario: In this scenario there was a request to have a distribution list for all CIO > Manager + Direct Reports > Manager + Direct Reports. The end result will be everyone who reports to the CIO both directly and indirectly. Sample Data: CIO Direct and Indirect Reports Distribution List Directors DL Manager DL Supervisors…